Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207531	6.4	警告	サイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2009-4028	2010-06-3 14:57	2009-11-4	Show	GitHub Exploit DB Packet Storm

207532	4	警告	富士通九州システムズ	-	e-Pares におけるセッション固定の脆弱性	CWE-Other その他	CVE-2010-2149	2010-06-2 15:05	2010-06-2	Show	GitHub Exploit DB Packet Storm

207533	2.6	注意	富士通九州システムズ	-	e-Pares におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2151	2010-06-2 15:04	2010-06-2	Show	GitHub Exploit DB Packet Storm

207534	4.3	警告	富士通九州システムズ	-	e-Pares におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2150	2010-06-2 15:02	2010-06-2	Show	GitHub Exploit DB Packet Storm

207535	2.1	注意	アドビシステムズ	-	Adobe ColdFusion における重要な情報を取得される脆弱性	CWE-200 CWE-noinfo	CVE-2010-1294	2010-06-2 12:14	2010-05-11	Show	GitHub Exploit DB Packet Storm

207536	4.3	警告	アドビシステムズ	-	Adobe ColdFusion の Administrator ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1293	2010-06-2 12:14	2010-05-11	Show	GitHub Exploit DB Packet Storm

207537	4.3	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3467	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

207538	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の pami RIFF chunk 構文解析における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1292	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

207539	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1291	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

207540	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1290	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2191	-		-	-	An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux versions 6.2.7 and below, version 6.4.0. may allow local users to elevate their privileges to root by…	CWE-269 Improper Privilege Management	CVE-2020-15934	2024-12-19 20:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2192	-		-	-	Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and below, version 5.6.12 and below may allow a remote attacker authenticated to the SSL VPN to crash the Fort…	CWE-121 Stack-based Buffer Overflow	CVE-2020-12820	2024-12-19 20:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2193	-		-	-	Incorrect authorization vulnerability in HTTP POST method in Govee Home application on Android and iOS allows remote attacker to control devices owned by other users via changing "device", "sku" and …	-	CVE-2023-4617	2024-12-19 19:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2194	-		-	-	Netskope was made aware of a security vulnerability in Netskope Endpoint DLP’s Content Control Driver where a double-fetch issue leads to heap overflow. The vulnerability arises from the fact that th…	-	CVE-2024-11616	2024-12-19 19:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2195	-		-	-	External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malici…	CWE-73 External Control of File Name or Path	CVE-2024-4230	2024-12-19 17:17	2024-12-19	Show	GitHub Exploit DB Packet Storm

2196	-		-	-	Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious loca…	CWE-276 Incorrect Default Permissions	CVE-2024-4229	2024-12-19 17:17	2024-12-19	Show	GitHub Exploit DB Packet Storm

2197	-		-	-	An access of uninitialized pointer (CWE-824) vulnerability in FortiWLC versions 8.6.0, 8.5.3 and earlier may allow a local and authenticated attacker to crash the access point being managed by the co…	CWE-824 Access of Uninitialized Pointer	CVE-2021-26093	2024-12-19 17:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2198	-		-	-	A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6.12, 6.0.10, 6.2.4 and 6.4.1 and earlier may allow a remote attacker with valid…	CWE-122 Heap-based Buffer Overflow	CVE-2020-12819	2024-12-19 17:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2199	4.3	MEDIUM Network	-	-	The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.1.5 via the 'btn_bloc…	CWE-200 Information Exposure	CVE-2024-12560	2024-12-19 16:15	2024-12-19	Show	GitHub Exploit DB Packet Storm

2200	5.3	MEDIUM Network	-	-	The Download Manager plugin for WordPress is vulnerable to unauthorized download of password-protected content due to improper password validation on the checkFilePassword function in all versions up…	CWE-285 Improper Authorization	CVE-2024-11768	2024-12-19 15:15	2024-12-19	Show	GitHub Exploit DB Packet Storm